66 points
*

What’s the answer? I need the link

Edit: I found it

permalink
report
reply
112 points

That’s easy, just call it Jhon\nDoe

permalink
report
reply
76 points

John\0Doe will fuck with all C (and C based derivatives) software that touches it.

permalink
report
parent
reply
20 points

C and C derivatives will be fine unless they’re fucking up encoding.

permalink
report
parent
reply
17 points

Which rarely, if ever, happens. Especially with US software.

permalink
report
parent
reply
71 points

Nah, it will end up simply as “John” in the database. You need “John%sDoe” to crash C software with unsafe printf() calls, and even then it’s better to use several “%s”

permalink
report
parent
reply
9 points

With an address in 's-Hertogenbosch to help people who are lazy about escaping.

permalink
report
parent
reply
217 points

“We call her Carrie, because of the carriage return.”

You can also try to give the child NULL as middle name for additional fun.

permalink
report
reply
166 points
*

someone tried that with their license plate, it turned out well: https://www.wired.com/story/null-license-plate-landed-one-hacker-ticket-hell/

edit: archive link

permalink
report
parent
reply
7 points

Yeah, this is his daughter

permalink
report
parent
reply
84 points

I just realized that the shitty software on the other side of the divide is casting null to ”null", which absolutely explains that issue. What a cluster

permalink
report
parent
reply
17 points

shudders in NodeJS

permalink
report
parent
reply
30 points

Yeah, I love to rag on languages with weak typing, because of the potential for a bug, but seeing it play out in reality, directly with user input, that’s certainly something else.

permalink
report
parent
reply
7 points

they should have just used rust smh

permalink
report
parent
reply
28 points
*

He is being too nice. He needs to get a lawyer and sue that shitty company for harassment and whatever else.

ETA: The US isn’t overly litigious. We are under litigious if anything.

permalink
report
parent
reply
9 points

Large corporations are overly litigious. Individuals can’t afford to be litigious enough.

permalink
report
parent
reply
3 points

Oh no, it gets worse:

Prank or not, Tartaro was playing with fire by going with NULL in the first place. “He had it coming,” says Christopher Null, a journalist who has written previously for WIRED about the challenges his last name presents. “All you ever get is errors and crashes and headaches.”

Archive link: https://archive.ph/o/Foe1r/https://www.wired.com/2015/11/null/

permalink
report
parent
reply
7 points
Ca\r\rie
permalink
report
parent
reply
4 points

Hey “java.lang.NullPointerException” can I borrow your pen?

permalink
report
parent
reply
21 points

This sounds like the start of another sovcit “loophole”

permalink
report
reply
59 points
*

Just noticed that the listing for ; DROP TABLE “COMPANIES”; – LTD has been redacted by the government website‽

permalink
report
reply
7 points

Is it missing an apostrophe and a dash? Or they registered the wrong name?

Anyway, the use of quotes seem to have backfired. I blame Excel.

permalink
report
parent
reply
9 points

Apparently they didn’t include the single quote at the beginning because they wanted to hint at the exploit without actually triggering it.

(and Lemmy seems to combine two dashes into one)

permalink
report
parent
reply

Programmer Humor

!programmer_humor@programming.dev

Create post

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

  • Keep content in english
  • No advertisements
  • Posts must be related to programming or programmer topics

Community stats

  • 2K

    Monthly active users

  • 861

    Posts

  • 14K

    Comments